Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
File: 1K5pV43Ol3ozqindV8oZD6aHd_o.mft (raw, json)
Hash identifier: 1i9YhiCVALDBytDkyUGePm++iSxt7PyVnQbvVGto7aE=
Subject key identifier: 2B:C4:1F:F1:53:B1:C2:A5:D1:53:6E:69:4C:F6:10:53:9C:19:27:02
Authority key identifier: D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
Certificate issuer: /CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Certificate serial: 0198D660AA5D511B5DCB6FB15EDB5FEACF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
Manifest number: 0CC0
Signing time: Sat 23 Aug 2025 10:01:55 +0000
Manifest this update: Sat 23 Aug 2025 10:01:55 +0000
Manifest next update: Sun 24 Aug 2025 10:01:55 +0000
Files and hashes: 1: 1K5pV43Ol3ozqindV8oZD6aHd_o.crl (hash: IB9bRZpu5+ZLCHAwKf/j/6W25hRWnn4n4EsF/lkgFE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:aa:5d:51:1b:5d:cb:6f:b1:5e:db:5f:ea:cf:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Validity
Not Before: Aug 23 10:01:55 2025 GMT
Not After : Aug 24 10:01:55 2025 GMT
Subject: CN=2bc41ff153b1c2a5d1536e694cf610539c192702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:9d:56:6c:0d:6d:9d:dc:aa:ad:8e:5a:0d:
64:c3:2d:08:bb:e4:62:32:de:6e:0f:08:e1:fa:7f:
75:ea:8c:d4:3f:fd:c4:41:d4:88:35:aa:d4:50:4e:
1c:f9:f2:b2:1e:dd:19:86:d2:da:3f:50:80:14:a7:
ca:e3:af:b2:61:f0:b4:c1:c9:f6:4f:55:9b:76:47:
83:1a:cd:7e:6e:e7:b8:a5:6e:06:67:d8:a9:6c:68:
0d:a2:f1:2f:32:d5:d2:be:26:f7:57:36:49:eb:5b:
bf:4c:4e:55:13:46:b0:2c:fc:e1:3e:55:b3:0c:e8:
e9:00:ec:d3:33:b4:d8:69:85:06:08:f7:05:99:e2:
09:69:a4:b8:24:a3:f5:8d:59:3c:47:66:1e:e3:07:
96:b5:28:e7:a8:75:b8:64:12:01:9f:9c:33:76:0e:
bd:cd:a9:fa:3c:ed:ab:1a:85:1b:52:f8:43:4c:08:
8f:45:fe:b3:c9:eb:e9:95:b7:00:a5:5a:11:89:22:
53:8f:71:e3:64:48:ee:49:4c:42:32:65:3a:e0:b6:
f7:b3:fa:f7:be:11:d5:30:a8:75:c2:59:a8:ea:87:
ec:78:4c:9b:83:0d:08:bd:0d:97:26:bc:18:65:e9:
4b:3a:9d:f3:26:a5:9a:b3:bb:7c:9d:ed:cc:24:ee:
67:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C4:1F:F1:53:B1:C2:A5:D1:53:6E:69:4C:F6:10:53:9C:19:27:02
X509v3 Authority Key Identifier:
keyid:D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:03:19:24:56:ff:7d:9f:c6:38:5f:94:e6:a7:61:c5:62:f3:
1d:9a:c1:72:28:a9:80:e9:be:19:03:bf:73:2b:db:d7:18:01:
e8:14:b5:7e:bf:6a:6a:33:1d:9f:d8:43:97:be:b5:9c:2c:2f:
f7:ba:f7:53:d4:7b:8f:5c:32:0d:1a:84:5f:df:ce:ff:6a:7f:
d2:90:d1:b1:ee:57:40:9a:9e:ed:50:c0:2d:aa:c2:69:71:09:
60:50:af:ac:0c:2a:64:5d:12:a4:07:f4:1b:f7:4c:93:09:61:
77:c5:e8:f4:14:1e:01:e4:70:f0:7e:e2:6c:0b:ba:9d:9d:45:
8b:f6:2a:bd:04:1f:a5:b5:24:d9:87:98:46:be:5e:af:0c:54:
fa:a9:1e:4d:ef:eb:09:f4:ac:e7:f1:d5:61:26:a3:be:54:0e:
8e:4e:39:cf:b6:cf:07:5b:f3:58:cd:f3:31:1e:27:90:5b:e8:
6b:0d:8d:a2:29:60:66:28:48:aa:22:27:20:72:98:17:5e:e1:
ec:7a:fc:fa:36:3a:eb:b1:8e:c8:38:89:9b:61:a8:85:9d:52:
16:30:a9:71:40:ae:cc:f7:f8:0c:3d:51:32:85:0a:54:49:84:
26:bd:96:27:88:f4:db:70:ce:b1:6b:c3:6e:01:36:50:b7:04:
ea:8a:ce:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:22:04 2025 by rpki-client